.Fsb-22-2p06 02:06pin Frgn-MORR IS MANNING MARTIN 



4043644578 



T-50Z P. 006/019 F-712 



Application No. 10/711,132 
Response dated November 22, 20QS 
Reply to Office Action of February 22, 2006 
Page 4 of 15 

LISTING OF CLAIMS 

This listing of claims will replace all prior versions, and Ustings, of claims in the 
application: 



1. (original) In a system for performing an action, in response to an electronic 
communication regarding an accoimt, which electronic comniunication is received from a sender 
by a receiver, a method comprising the steps of: 

(a) initially, associating by the receiver, sender identity information and a public key of a 
pubUc-private key pair with the account such that the pubUc key is retrievable based on the 
sender identity information, wherein the account comprises transactional account information, 
and wherein the public key is associated with the account in a computer database; and thereafter 

(b) receiving the electronic conmiunication from the sender, 

(i) wherein the electronic communication was created after the association of the 
sender identity inforaiation and the public key with the account in step (a), 

(ii) wherein the electronic communication comprises, 

(A) the sender identity information, and 

(B) a digital signature derived using the private key of the pair from an 
electronic message possessed first by the sender before the receiver, the sender identity 
information being different from the electronic message, and 

(iii) wherein the electronic conmiunication is communicated electronically from 

the sender; and 

(c) validating the identity of the sender for the electronic communication by only 
performing the steps of, 

(i) utili2ing the sender identity infonnation received in the electronic 
communication to retrieve the public key based on the association of the sender identity 
information and the public key with the account performed in step (a), and 
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(ii) coraparing a function of The public key and the digital signature with a 
fiinction of the electronic message, wherein the function of the pubUc key and the digital 
Signature comprises decrypting the digital signature using the public key, 

whereby a comparison resulting in a match validates the identity of the sender. 

2. (original) In a system for perfonning an action, in response to an electronic 
communication regarding an account, which electronic communication is received ftom a sender 
by a receiver, a method comprising the steps of: 

(a) initially, associating by the receiver, sender identity information and a public key of a 
pubUc-private key pair with the account such that the public key is retrievable based on the 
sender identity information, wherein the account comprises transactional account information, 
and wherein the public key is associated with the account in a computer database; and thereafter 

(b) receiving the electronic communication ftom the sender, 

(i) wherein the electronic communication was created after the association of the 
senda: identity information and the public key with the account in step (a), 

(ii) wherein the electronic communication comprises, 

(A) the sender identity information, and 

(B) a digital signamre derived using the private key of the pair from an 
electronic message possessed first by the sender before the receiver, the sender identity 
information being different fiom the electronic message^ and 

(iii) wherein die electronic communication is communicated electronically from 
the sender, and 

(c) validating the identity of the sender for the electronic communication by only 
perfonning the steps of, 

(i) utilizing the sender identity infomiation received in the electronic 
communication to retrieve the public key based on the association of the sender identity 
information and the pubhc key with the account performed in step (a), and 
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(ii) comparing a fimction of the public key and the digital signature with a 
function of the electronic message, wherein the function of the public key and the digital 
signature comprises deciypting the digital signature using the public key, 

whereby a comparison resulting in a match validates the identity of the sender, and 
Wherein neither a PIN nor a password is required to be uransmitted to the receiver for validating 
the identity of the sender. 

3. (original) La a system for perfoiming an action, in response to an electronic 
communication regarding an account, which electronic communication is received from a sender 
by a receiver, a method comprising the steps of; 

(a) initially, associating by the receiver, sender identity infoimation and a public key of a 
pubUc-private key pair with the account such that the pubUc key is retrievable based on the 
sender identity infoimation, wherein the accoimt comprises transactional account information 
and the sender identity infoimation comprises other than an account number, and wherein the 
pubUc key is associated witii the account in a computw database; and thereafter 

(b) receiving the electronic communication from the sender, 

(i) wherein the electronic communication was created after the association of the 
sender identity inforaiation and flie public key with Ae account in step (a), 

(ii) wherein the electronic communication coiiq>rise$, 

(A) the sender identity information, and 

(B) a digital signature derived using die private key of the pair from an 
electronic message possessed first by the sender before the receiver, the sender identity 
infoimation being different from the electronic message, and 

(iii) wherein the electronic communication is communicated electronically fix>m 
the sendCT; and 

(c) validating the identity of the sender for the elech^onic communication by, 

6 
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(i) utilizmg the sender identity information received in the electronic 
conmnmication to reaieve the public key based on the association of the sender identity 
information and the pubUc key with the account perfonned in step (a), and 

(ii) compaiing a function of the public key and the digitaJ signature with a 
fimction of the electronic message, wherein the function of the pubUc key and the digital 
signature comprises decrypting the digital signature using the public key, 

whereby a comparison resulting in a match vaJidates the identity of the sender. 

4. (original) In a system for perfoiming an action, in response to an electronic 
communication regarding an account, which electronic communication is received from a sender 
by a receiver, a method comprising the stq>s of: 

(a) initially, associating by the receiver sender identity information and a public key of a 
pubhc-private key pair with the account such that the public key is retrievable based on the 
sender identity information, wherein the account comprises transactional account information, 
and wherem the pubKc key is associated with the account in a computer database; and thereafter 

(b) receiving the electronic communication fiom the sender, 

(i) wherein the electronic communication was created after the association of the 
sender identity information and the pubUc key with the account in step (a), 

(ii) wherein the electronic communication comprises, 

(A) the sender identity information, and 

(B) a digital signature derived using the private key of the pair from an 
electronic message possessed first by the sender before the receiver, the sender identity 
information being different fiom the electronic message, and 

(iii) wherein the electronic conununication is communicated electronically from 

the sender, and 

(iv) wherein the electrooic communication is the only electronic communication 
received from the sender by the receiver relating to the action; and 
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(c) vaUdating the identity of the sender for the electronic communication by, 

(i) utilizing the sender identity information received in the electronic 
communication to retrieve the public key based on the association of the sender identity 
iafonnation and the public key with the account performed in step (a), and 

(ii) comparing a function of the pubUc key and the digital signature with a 
function of the electronic message, wherein the function of the public key and the digital 
signature comprises decrypting the digital signature using the pubUc key, 

whereby a comparison resulting in a match validates the identity of the sender. 

5. (original) The method of claims 1, 2. 3. or 4, wherein the electronic communication 
includes the electronic message. 

6. (original) The method of claims 1, 2, 3, or 4, wherein the electronic message is 
implied fiom the receipt of tfie electronic communication. 

7. (original) The method of claims 1, 2, 3, or 4, wherein the digital signature is derived 
within a smart card of the sender. 

8. (original) The method of claims 1. 2, 3, or 4, wherein the digital signature is received 
fiom the sender within a tenninal of a third-party and then forwarded to the receiver. 

9. (original) The method of claims 1, 2, 3, or 4. wherein the electronic communication is 
received over a secure network. 

10. (original) The method of claims 1. 2. 3, or 4. wherein the electronic communication 
is received over an insecure network. 
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1 1. (original) The method of claim 10, wherein the network comprises tlie Internet. 

12. (original) The method of claims I, 2, 3, or 4, wherein the electronic commnnicaiion 
is received encrypted. 

13. (original) The method of claims 1, 2, 3, or 4, wherein the electronic communication 
is received unencrypted 

14. (original) The meihod of claims 1, 2, 3, or 4, wherein the receiver is a financial 
institution and the action on the account comprises a financial transaction. 

15. (original) The method of claims 1, 2, 3. or 4, wherein the electronic communication 
includes the public key. 

16. (original) The method of claims 1, 2. or 4, wherem the sender identity information 
comprises the account number. 

17. (original) The method of claims 1, 2, or 4, wherein the sender identity information 
comprises other than the account ^number. 

18. (original) The method of claims 1, 2, 3, or 4, wherein the pubUc key was associated 
with the account when the account was first established. 

19. (original) The method of claim 18, wherein the pubUc key was provided by the 
sender to the receiver. 
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20. (origmal) The method of claim 1 8, wherein the public key was provided to the sender 
by the receiver. 

21. (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
infonnation includes infoimation required to process the action. 

22. (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
information includes a personal identification number (PIN). 

23. (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
information includes an account balance rqnresenting fiinds in the account. 

24. (original) The method of claims I, 2, 3, or 4, wherein the transactional account 
infonnation includes infoimation validated when the account was established. 

25. (original) The method of claims 1, 2, 3. or 4, wh»cin the transactional account 
infonnation includes infonnation that was validated in a face-to-fece acknowledgement between 
the sender and the receiver. 

26. (original) The method of claims 1, 2, 3, or 4, wherein the account comprises a 
checking account. 

27. (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
infonnation includes a history of ledger transactions in the account 

28. (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
information includes the social security number of the sender. 
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29. (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
infonnation includes the address of the sender, 

30» (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
infonnation includes the mother's maiden name of the sender. 

31. (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
information includes entity infotmation of the sender. 

32. (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
information only includes entity information of the sender. 

33. (original) The method of claims 1, 2, 3, or 4, wherein the transactional account 
information includes business process informatioa 

34. (origmal) The method of claims I, 2, 3, or 4, wherein the transactional account 
information is stored in fields in records in a computer database. 

35. (original) The mefliod of claim 34, wherein the records comprise an account file. 

36. (original) The method of claim 35, wherein the records further comprise a 
transactions file. 

37. (original) The method of claims 1, 2, 3, or 4, wherein the digital signanire is derived 
within a hand-held device of the sender, 
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38. (original) The method of claims 1, 2, 3, or 4, wherein the function of the electronic 
message comprises applying a hashing algorithm to the electronic message. 
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